Lacework vs. Netskope CASB

Lacework is well suited for behavioral analysis. One thing to consider thought is in the early stages there will be quite a bit of noise generated by Lacework. There will be a higher volume alerts generated initially - until a good baseline is generated. Overall Lacework is good with alert handling - integration with Slack is good.

Incentivized

The Netskope CASB solution is well-suited for any company due to the proliferation of SaaS applications. With the agent being installed on endpoints, the product is well suited for remote work environments where a managed corporate network may not be available. The agent allows visibility and controls to be applied to any networks the devices connect to.

• Easy to set-up the agent in cloud workloads.
• Easy integration with ticketing and messaging tools.
• Detailed visibility of all our container workloads across multiple accounts.

Incentivized

• Monitor SaaS usage.
• Manage gaps in shadow IT.
• Provide basic DLP functionality for SaaS usage.

Incentivized

• UI can be complicated and hard to know where to click to find information.
• Ability to create and manage cases or tickets from events that trigger.

• Public IP for user can be from different country then it came from
• Sometimes you can't get anywhere with Netscope ON
• Location is the key for speed so users complain for speed of 'internet'
• Some location blocks Netscope IP ranges

Incentivized

Ease of deployment and strong security solution.

Wide knowledge base and learning tutorials available for customer as well as partners.

Multiple use case be it only governing, data security or protection against threat can be catered and customized depending on objective organization wants to achieve. Talented pool of TAC team to reach out and resolve the concerns.

Incentivized

There have been some struggles with their infrastructure keeping pace with demand and load. Support can only do so much and has to defer to known problems being escalated.

Incentivized

Compared to Sysdig Falco (the free open-source IDS), Lacework helps security teams by providing actionable alerts and a user-friendly interface that gives you an overview of all workloads being monitored, and detailed insights into these workloads if needed. Falco requires you to build your own integration and interface around it, including a mechanism to whitelist certain alerts. This made it harder for the security team to focus their time on potential intrusions.

Incentivized

I find that Netskope CASB provides a larger catalog of SaaS applications and provides additional security controls for each app, allowing granularity to what actions end users can perform on the sites. This goes beyond simple block download/block upload, making it highly effective at enforcing the actions outlined in corporate policies.

• Being a FinTech company, financial institutions who partner with us want to know that we are appropriately maintaining a Security, Risk and Compliance program that maintains a level of comfort for their vendor management. Lacework gives us the ability to monitor and maintain a level of security for our infrastructure that puts our partners at ease, reduces the revenue cycle for new partners and opens doors to the future.

• Identify non-sanctioned cloud applications.
• Justify use and expansion of IaaS.
• Track sensitive data flows in and out of Cloud.

Incentivized